IETF Logo Mail Archive

Re: [tcpm] Updated version of draft-ietf-tcpm-converters-05

"Scharf, Michael" <Michael.Scharf@hs-esslingen.de> Sun, 03 March 2019 23:48 UTC

Return-Path: <Michael.Scharf@hs-esslingen.de>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C2F7124BF6 for <tcpm@ietfa.amsl.com>; Sun, 3 Mar 2019 15:48:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=hs-esslingen.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lOW2x-MV4p80 for <tcpm@ietfa.amsl.com>; Sun, 3 Mar 2019 15:48:22 -0800 (PST)
Received: from mail.hs-esslingen.de (mail.hs-esslingen.de [134.108.32.78]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 83BAB12426A for <tcpm@ietf.org>; Sun, 3 Mar 2019 15:48:21 -0800 (PST)
Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.hs-esslingen.de (Postfix) with ESMTP id 8E01725A1C; Mon, 4 Mar 2019 00:48:18 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=hs-esslingen.de; s=mail; t=1551656898; bh=Lq2rFiev5pEUNsZdB/cmAPVldiqyfK+hWU9EZU8bKWg=; h=From:To:Subject:Date:References:In-Reply-To:From; b=g/2afOnAHpO+L4+cTtKnyIoa2noRqhGcYwgla/jfh4GsUE9k5BlB58qWnvmsf6RvF kyuVRkZLZmN42IDc6NmJoUzjcT9BB2X0uSDPFh9XASgZ4jdqnqHx6m1CE8WFVJojiz pYpXmzHC9adIUiaCFdVubxGdJoKuU8+e1adbT3jU=
X-Virus-Scanned: by amavisd-new-2.7.1 (20120429) (Debian) at hs-esslingen.de
Received: from mail.hs-esslingen.de ([127.0.0.1]) by localhost (hs-esslingen.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ut1HZBYNnOTS; Mon, 4 Mar 2019 00:48:17 +0100 (CET)
Received: from rznt8101.rznt.rzdir.fht-esslingen.de (rznt8101.rznt.rzdir.fht-esslingen.de [134.108.29.101]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by mail.hs-esslingen.de (Postfix) with ESMTPS; Mon, 4 Mar 2019 00:48:17 +0100 (CET)
Received: from RZNT8114.rznt.rzdir.fht-esslingen.de ([169.254.3.183]) by rznt8101.rznt.rzdir.fht-esslingen.de ([fe80::bd73:d6a9:24d7:95f1%10]) with mapi id 14.03.0415.000; Mon, 4 Mar 2019 00:48:17 +0100
From: "Scharf, Michael" <Michael.Scharf@hs-esslingen.de>
To: Olivier Bonaventure <olivier.bonaventure@tessares.net>, "tcpm@ietf.org" <tcpm@ietf.org>
Thread-Topic: [tcpm] Updated version of draft-ietf-tcpm-converters-05
Thread-Index: AQHUv86JmdngfITgq0CMtVlOHS+P7aX6oiig
Date: Sun, 03 Mar 2019 23:48:16 +0000
Message-ID: <6EC6417807D9754DA64F3087E2E2E03E2D248C3C@rznt8114.rznt.rzdir.fht-esslingen.de>
References: <9DD59801-36CE-407E-98F0-0BB1AAD514A7@tessares.net>
In-Reply-To: <9DD59801-36CE-407E-98F0-0BB1AAD514A7@tessares.net>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [134.108.63.3]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/OC5K29zdfVc2n_9edwmELq0UBkc>
Subject: Re: [tcpm] Updated version of draft-ietf-tcpm-converters-05
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Mar 2019 23:48:25 -0000

Hi Olivier,

I have read -05. Please find below some comments/questions (with chair hat off):

- Page 8: Sorry if I missed this... Can a client ask the converter to send application data in the SYN payload data to the server (possibly even without TFO option)? Is it correct that the Convert protocol does not allow such use of SYN payload data towards the remote host?

- Page 8: What happens if the SYN,ACK from the server to the converter contains payload data (possibly even without TFO option)?

- Page 10: I wonder if the text on address sharing modes can be understood without having read RFC 4787 and RFC 6888 and whether they would be normative references (instead of informative references).

- Page 13: If the remote host used payload data in the SYN towards the converter (possibly even without TFO option), would this require any special handling in the converter?

- Page 18: Is my understanding correct that when a client sends a Connect TLV with one of its own addresses as "remote peer IP Address", then the transport converter MUST attempt to establish this connection? In other words, a converter that would _not_ set up this connection back to the client would violate the protocol specification?

- Page 25/26: Related to the first two comments: In this discussion on TFO handling, I wonder what would happen to actual payload data in the SYN or SYN,ACK of the connection between the converter and the remote peer.

- Page 29: "IANA is requested to create the "Convert versions" sub-registry.  New values are assigned via Standards Action." The term "Standards Action" is defined in RFC 8126 Section 4.9. I observe that this document specifies an experimental protocol. Why is the IANA policy not set e.g. to "RFC required"?

- Page 30: "The values in the range 1-127 can be assigned via Standards Action." Again, what is the reason for not using e.g. "RFC required" here?

- Page 34: Changes from 04 to -05 are not documented, e.g. the text below could be useful here

- Page 40: " A first difference is that the Convert protocol leverages the TFO option [RFC7413] to exchange all control information during the three-way handshake." That seems inconsistent with what is written below.

Editorial nits:

- Page 5: "Applicability document may _be_ defined in the future."

- Page 7: "making use of _new_ TCP extensions"

Best regards

Michael


> -----Original Message-----
> From: tcpm <tcpm-bounces@ietf.org> On Behalf Of Olivier Bonaventure
> Sent: Friday, February 8, 2019 5:51 PM
> To: tcpm@ietf.org
> Subject: [tcpm] Updated version of draft-ietf-tcpm-converters-05
> 
> Hello,
> 
> We have uploaded a new version of draft-ietf-tcpm-converters-05 (see
>  https://www.ietf.org/internet-drafts/draft-ietf-tcpm-converters-05.txt )
> that includes a lot of feedback from implementors who have worked on
> client and server side implementations. Compared to the previous version,
> the main modifications are the following :
> 
> - TCP Fast Open is not strictly required anymore. Several implementors
> expressed concerns about this requirement. The TFO Cookie protects from
> some attack scenarios that affect open servers like web servers. The Convert
> protocol is different and as discussed in RFC7413, there are different ways to
> protect from such attacks. Instead of using a TFO cookie inside the TCP
> options, which consumes precious space in the extended TCP header, this
> new version supports the utilisation of a Cookie that is placed in the SYN
> payload. This provides the same level of protection as a TFO Cookie in
> environments were such protection is required.
> 
> - the Boostrap procedure has been simplified based on feedback from
> implementers
> 
> - Error messages are not included in RST segments anymore but sent in the
> bytestream. Implementors have indicated that processing such segments on
> clients was difficult on some platforms. This change simplifies client
> implementations.
> 
> - many small editorial changes to clarify the text based on implementors
> feedback
> 
> Chairs, we believe that the document is now stable. As the milestone was set
> to
> December 2018, we kindly request to organize a WGLC on -05 ASAP so that
> we can address issues that may arise during the call and prepare an updated
> version for the Prague meeting.
> 
> FWIW, both the Broadband Forum and 3GPPP are working on documents
> that leverage the protocol proposed in this draft.
> 
> Best regards,
> 
> Olivier and Med
> --
> 
> 
> Disclaimer: https://www.tessares.net/mail-disclaimer/
> <https://www.tessares.net/mail-disclaimer/>
> 
> 
> _______________________________________________
> tcpm mailing list
> tcpm@ietf.org
> https://www.ietf.org/mailman/listinfo/tcpm

v2.23.0 | Report a Bug | By Email